Online Complaint Site index.php File SQL Injection Vulnerability

Online Complaint Site is an online complaint site. Online Complaint Site suffers from a SQL injection vulnerability that originates from the lack of validation of an externally-entered SQL statement in the parameter Username in file /cms/users/index.php. An attacker can exploit this vulnerability...

Online Complaint Site /cms/users/complaint-details.php File SQL Injection Vulnerability

Online Complaint Site is an online complaint site. Online Complaint Site suffers from a SQL injection vulnerability that originates from improperly filtered SQL statements submitted in the /cms/users/complaint-details.php file, which can be exploited by an attacker to obtain sensitive data and mo...

CVE-2025-11514

A vulnerability was identified in code-projects Online Complaint Site 1.0. This vulnerability affects unknown code of the file /cms/users/index.php. Such manipulation of the argument Username leads to sql injection. The attack may be performed from remote. The exploit is publicly available and...

CVE-2025-11514 code-projects Online Complaint Site index.php sql injection

A vulnerability was identified in code-projects Online Complaint Site 1.0. This vulnerability affects unknown code of the file /cms/users/index.php. Such manipulation of the argument Username leads to sql injection. The attack may be performed from remote. The exploit is publicly available and...

CVE-2025-11514 code-projects Online Complaint Site index.php sql injection

A vulnerability was identified in code-projects Online Complaint Site 1.0. This vulnerability affects unknown code of the file /cms/users/index.php. Such manipulation of the argument Username leads to sql injection. The attack may be performed from remote. The exploit is publicly available and...

Code-Projects Online Complaint Site SQL注入漏洞

Online Complaint Site is an online complaint site. Online Complaint Site suffers from a SQL injection vulnerability that originates from improperly filtered SQL statements submitted in the /cms/users/complaint-details.php file, which can be exploited by an attacker to obtain sensitive data and mo...

PT-2025-41322

Name of the Vulnerable Software and Affected Versions code-projects Online Complaint Site version 1.0 Description A flaw exists in code-projects Online Complaint Site 1.0 that allows for SQL injection. This occurs through manipulation of the Username argument in the file '/cms/users/index.php'. T...

EUVD-2019-0733

Malware in sbrugna...

Privilege Escalation

silverstripe/framework is vulnerable to privilege escalation. Due to incorrectly shared caches between files and page content, CMS users with different permissions for these object types could gain more access than defined by the system...

GHSA-6R58-4XGR-GM6M SilverStripe Priviledge escalation through cache pollution

In SilverStripe through 4.3.3, there is access escalation for CMS users with limited access through permission cache pollution...

SilverStripe Priviledge escalation through cache pollution

In SilverStripe through 4.3.3, there is access escalation for CMS users with limited access through permission cache pollution...

CVE-2019-12617

In SilverStripe through 4.3.3, there is access escalation for CMS users with limited access through permission cache pollution...

CVE-2019-12617

In SilverStripe through 4.3.3, there is access escalation for CMS users with limited access through permission cache pollution...

Design/Logic Flaw

In SilverStripe through 4.3.3, there is access escalation for CMS users with limited access through permission cache pollution...

CVE-2019-12617

CVE-2019-12617 affects SilverStripe prior to or including version 4.3.3, with an access escalation vulnerability where CMS users with limited permissions can gain higher privileges due to a permission cache pollution issue. The connected records consistently describe “permission cache pollution” ...

CVE-2019-12617

In SilverStripe through 4.3.3, there is access escalation for CMS users with limited access through permission cache pollution...

CVE-2019-12617: Access escalation for CMS users with limited access through permission cache pollution

More info at https://www.silverstripe.org/download/security-releases/cve-2019-12617/...

Kehorne CMS 1.0 SQL Injection

================================================================================ Author: R3VANBASTARD Exploit Title: Kehorne CMS v1.0 category.php = SQL injection Tested on: Windows 7 Status: FIXED Dork: "Website Designed by Kehorne"...

phpaaCms v0. 3. 1 SQL injection vulnerability-vulnerability warning-the black bar safety net

PHPAA show.php injection vulnerability Injection test http://server/phpaaCMS/show.php?id=-194 union all select 1,2,3,4,5,6,7,8,9,10,concatusername,0x3a,password,1 2,1 3,1 4,1 5 from cmsusers-- Affected versions: FooSun 5.0 Official address: http://www.phpaa.cn...

Netvolution CMS 2.x - SQL Injection Script

!/usr/bin/perl Exploit Title: Netvolution exploit script for CMS Version = 2.xx.xx.xx Date: 10/6/2010 Sotware Link: www.netvolution.net Bug found : amquen, krumel Exploited by: krumel Exploit Coded: mr.pr0n Many thanks to icesurfer author of SQLNINJA and all p0wnbox members. I have contact...